🛠️ 2025-11-27 Tech Update Summary

🔹 Kubernetes - Kubernetes v1.35 Sneak Peek

The tech blog post provides a preview of the upcoming Kubernetes v1.35 release, detailing planned changes and enhancements. Key deprecations include the removal of cgroup v1 support, deprecation of kube-proxy’s ipvs mode, and phasing out support for containerd v1.x. Notable enhancements in v1.35 include the introduction of node-declared features for better scheduling, the graduation of in-place update of Pod resources to General Availability, support for native Pod certificates, numeric values for taints, user namespaces for enhanced security, and support for mounting OCI images as volumes. The release is scheduled for December 17, 2025, with more details to be announced in the official CHANGELOG. The community is encouraged to stay informed and participate through various channels. 👉 Read more

🔹 Spring Boot - Spring Cloud 2025.1.0 (aka Oakwood) has been released

The blog post announces the release of Spring Cloud 2025.1.0, also known as Oakwood, which is now available in Maven Central. This major release updates each project to version 5.0.0 and is based on Spring Framework 7 and Spring Boot 4. Key changes include the removal of the spring-cloud-starter-parent artifact, the addition of null-safety annotations in Spring Cloud Gateway and Commons, and the introduction of new modules and enhancements across various Spring Cloud components. Notable updates include JSON processing improvements, API versioning support, and the removal of deprecated artifacts. The post also provides guidance on how to start using this release with Maven and Gradle. Users are encouraged to provide feedback via GitHub, Gitter, Stack Overflow, or Twitter. 👉 Read more

🔹 Docker - Security that strengthens the ecosystem: Docker’s upstream approach to CVE-2025-12735

The tech blog post discusses how Docker addressed a critical security vulnerability, CVE-2025-12735, in the Kibana project, which is part of the Elasticsearch ecosystem. This vulnerability, with a CVSS score of 9.8, posed a significant risk as it allowed remote code execution. On November 24, 2025, Docker’s Hardened Images resolved this issue, highlighting their proactive and upstream approach to security. While other vendors’ images still contained the vulnerability, Docker’s security team successfully mitigated it, underscoring their commitment to enhancing the security of the broader ecosystem. 👉 Read more

🔹 Java - Quality Outreach Heads-up - JDK 26: HttpClient Supports TLS Named Groups & Signature Schemes

The blog post titled “Quality Outreach Heads-up - JDK 26: HttpClient Supports TLS Named Groups & Signature Schemes” is a communication update directed towards projects involved in the Java development community. The post discusses the new features in JDK 26, specifically focusing on how the HttpClient now supports TLS signature schemes and named groups. These features can be configured on SSLParameters, enhancing the security and flexibility of the HttpClient. For more details, readers are directed to the provided link. 👉 Read more

🔹 Golang - Go’s Sweet 16

The blog post celebrates the 16th anniversary of the Go programming language, highlighting its journey and evolution since its inception. It discusses Go’s impact on the software development community, its growth in popularity, and the continuous improvements and innovations that have been made over the years. The post also reflects on Go’s core principles, such as simplicity, efficiency, and ease of use, which have contributed to its success and widespread adoption. Additionally, the article thanks the community and contributors for their support in making Go what it is today. 👉 Read more